299cf31a3769c886b08202e704d75a18

Sharing

Copy URL Twitter E-mail

General

Target

299cf31a3769c886b08202e704d75a18
Size

328KB
MD5

299cf31a3769c886b08202e704d75a18
SHA1

d1173d47a8d441f255fc4c7a2389a731576c2eb7
SHA256

91dce296f950abad8b084a695322b51b55bf38bb626dae613991e85c0802e33f
SHA512

5833083f80fbf6310190525cfc37917c790cec038e983d68f0f6ef06b9813bce25fe120c02dbed7c24d67672eb7288e4e33bc5967139828c1bd4c73a94584f16
SSDEEP

6144:855qPz0XdEUphRC9/+orImiA+8E59CD7zpfovRWcV3+q:8CPz0X37OX+8AIzpg7x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
299cf31a3769c886b08202e704d75a18

Files

299cf31a3769c886b08202e704d75a18
.exe windows:4 windows x86 arch:x86

a1bc6792490d783790ce9632eac7710d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

CreateStatusWindowW
ImageList_GetImageRect
ImageList_SetFilter
CreateMappedBitmap
ImageList_AddMasked
DrawStatusText
ImageList_Duplicate
CreatePropertySheetPageA
ImageList_GetFlags
ImageList_Replace
CreateStatusWindowA
ImageList_DrawEx
ImageList_SetFlags
ImageList_BeginDrag
ImageList_GetIconSize
ImageList_SetDragCursorImage
MakeDragList
GetEffectiveClientRect
InitCommonControlsEx
DrawStatusTextW
DestroyPropertySheetPage
ImageList_GetImageInfo

kernel32

GetCurrentProcess
GetStringTypeW
GetCurrentProcessId
SetFilePointer
GetLastError
CompareStringA
GetTimeZoneInformation
GetCurrentThread
IsBadWritePtr
FlushFileBuffers
SetHandleCount
GetSystemTimeAsFileTime
GetCurrentThreadId
LCMapStringA
OpenMutexA
FindAtomA
TerminateProcess
GetSystemInfo
TransmitCommChar
TlsAlloc
WideCharToMultiByte
CloseHandle
InterlockedExchange
GetModuleFileNameA
GetUserDefaultLCID
GetStringTypeA
GetStartupInfoA
GetProcAddress
ReadFile
WaitNamedPipeW
MultiByteToWideChar
DeleteCriticalSection
GetStartupInfoW
EnumSystemLocalesA
InitializeCriticalSection
EnterCriticalSection
GetACP
FindClose
LoadLibraryA
CreateMutexA
GetCommandLineA
OpenFileMappingA
GetCommandLineW
TlsSetValue
HeapFree
VirtualAlloc
TlsGetValue
UnhandledExceptionFilter
SetEnvironmentVariableA
HeapAlloc
GetTickCount
GetLocaleInfoW
CompareStringW
GetStdHandle
HeapCreate
GetDateFormatA
HeapSize
GetProcAddress
WritePrivateProfileStructA
IsValidLocale
GetEnvironmentStringsW
IsValidCodePage
HeapReAlloc
ReleaseSemaphore
GetCPInfo
LocalReAlloc
GetOEMCP
VirtualProtect
WriteFile
GetTimeFormatA
GlobalFindAtomA
VirtualFree
GetVersionExA
HeapDestroy
VirtualQuery
GetLocaleInfoA
LeaveCriticalSection
LCMapStringW
GetModuleFileNameW
TlsFree
LocalAlloc
SetStdHandle
GetFileType
GetEnvironmentStrings
SetLastError
ExitProcess
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetModuleHandleA
QueryPerformanceCounter
RtlUnwind

user32

RegisterClassExA
OpenDesktopA
CharLowerBuffA
LoadImageA
LoadIconA
EndDeferWindowPos
DdeQueryConvInfo
LoadStringA
InternalGetWindowText
TabbedTextOutW
EnumDisplayDevicesA
RegisterWindowMessageW
SetShellWindow
GetInputState
DdeUnaccessData
GrayStringW
DdePostAdvise
LoadMenuW
RegisterClassA
EnumDesktopsA
DialogBoxIndirectParamW
SetWindowPlacement
CreateWindowStationW
FillRect
EnumWindowStationsA
GetWindowTextLengthA
OemToCharBuffA
CreateIcon
GetDC
TabbedTextOutA
ScrollDC
CharUpperBuffA
LoadMenuIndirectA
CharToOemBuffW
DrawAnimatedRects
ToUnicode
DrawTextW
GetClassNameW
FrameRect
TrackPopupMenu
SetForegroundWindow
PostQuitMessage
GetWindowTextW
PostMessageA
GetMenuStringA
ShowWindow
SetMenuItemInfoW
GetWindowTextA
LoadCursorW
GetSystemMenu
GetShellWindow
SetMessageExtraInfo
TranslateAccelerator
GetTabbedTextExtentA
BlockInput
GetClipCursor
UnpackDDElParam
SetWindowContextHelpId
SetDebugErrorLevel
BringWindowToTop
CopyIcon
MapVirtualKeyW
CreateIconFromResource
FlashWindow
TileChildWindows
LoadBitmapW
AdjustWindowRect
CreateCursor

Sections

.text
Size: 140KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1bc6792490d783790ce9632eac7710d

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 140KB - Virtual size: 137KB

.rdata Size: 72KB - Virtual size: 69KB

.data Size: 92KB - Virtual size: 119KB

.rsrc Size: 20KB - Virtual size: 17KB

.text
Size: 140KB - Virtual size: 137KB

.rdata
Size: 72KB - Virtual size: 69KB

.data
Size: 92KB - Virtual size: 119KB

.rsrc
Size: 20KB - Virtual size: 17KB